Witam, dziękuję za zainteresowanie moim kłopotem oraz za odpowiedź.
Wklejam dzisiejszy report ze skanowania systemu avirą
(dodam że wykonałam jeden skan avirą, nastęnie skan combo fix-em którego log wkleiłam wcześniej).
Oto dzisiejszy report:
Avira AntiVir Personal
Report file date: 2 sierpnia 2011 17:53
Scanning for 3309883 virus strains and unwanted programs.
Licensee : Avira AntiVir Personal - FREE Antivirus
Serial number : 0000149996-ADJIE-0000001
Platform : Windows XP
Windows version : (Dodatek Service Pack 3) [5.1.2600]
Boot mode : Normally booted
Username : SYSTEM
Computer name : PC299592040431
Version information:
BUILD.DAT : 9.0.0.429 21701 Bytes 2010-10-06 10:04:00
AVSCAN.EXE : 9.0.3.10 466689 Bytes 2009-10-13 10:26:33
AVSCAN.DLL : 9.0.3.0 40705 Bytes 2009-02-27 09:58:24
LUKE.DLL : 9.0.3.2 209665 Bytes 2009-02-20 10:35:49
LUKERES.DLL : 9.0.2.0 12033 Bytes 2009-02-27 09:58:52
VBASE000.VDF : 7.10.0.0 19875328 Bytes 2009-11-06 06:35:52
VBASE001.VDF : 7.11.0.0 13342208 Bytes 2010-12-14 16:56:19
VBASE002.VDF : 7.11.3.0 1950720 Bytes 2011-02-09 18:47:20
VBASE003.VDF : 7.11.5.225 1980416 Bytes 2011-04-07 17:33:30
VBASE004.VDF : 7.11.8.178 2354176 Bytes 2011-05-31 19:40:34
VBASE005.VDF : 7.11.10.251 1788416 Bytes 2011-07-07 20:21:58
VBASE006.VDF : 7.11.10.252 2048 Bytes 2011-07-07 20:21:58
VBASE007.VDF : 7.11.10.253 2048 Bytes 2011-07-07 20:21:58
VBASE008.VDF : 7.11.10.254 2048 Bytes 2011-07-07 20:21:58
VBASE009.VDF : 7.11.10.255 2048 Bytes 2011-07-07 20:21:58
VBASE010.VDF : 7.11.11.0 2048 Bytes 2011-07-07 20:21:58
VBASE011.VDF : 7.11.11.1 2048 Bytes 2011-07-07 20:21:58
VBASE012.VDF : 7.11.11.2 2048 Bytes 2011-07-07 20:21:58
VBASE013.VDF : 7.11.11.75 688128 Bytes 2011-07-12 19:45:53
VBASE014.VDF : 7.11.11.104 978944 Bytes 2011-07-13 20:15:34
VBASE015.VDF : 7.11.11.137 655360 Bytes 2011-07-14 19:15:36
VBASE016.VDF : 7.11.11.184 699392 Bytes 2011-07-18 17:50:43
VBASE017.VDF : 7.11.11.214 414208 Bytes 2011-07-19 17:51:03
VBASE018.VDF : 7.11.11.242 772096 Bytes 2011-07-20 17:51:25
VBASE019.VDF : 7.11.12.3 1291776 Bytes 2011-07-20 17:52:24
VBASE020.VDF : 7.11.12.30 844288 Bytes 2011-07-21 19:34:23
VBASE021.VDF : 7.11.12.67 149504 Bytes 2011-07-24 17:43:29
VBASE022.VDF : 7.11.12.93 195072 Bytes 2011-07-25 17:43:30
VBASE023.VDF : 7.11.12.113 150528 Bytes 2011-07-26 17:42:59
VBASE024.VDF : 7.11.12.152 182784 Bytes 2011-07-28 16:32:25
VBASE025.VDF : 7.11.12.153 2048 Bytes 2011-07-28 16:32:25
VBASE026.VDF : 7.11.12.154 2048 Bytes 2011-07-28 16:32:25
VBASE027.VDF : 7.11.12.155 2048 Bytes 2011-07-28 16:32:26
VBASE028.VDF : 7.11.12.156 2048 Bytes 2011-07-28 16:32:26
VBASE029.VDF : 7.11.12.157 2048 Bytes 2011-07-28 16:32:26
VBASE030.VDF : 7.11.12.158 2048 Bytes 2011-07-28 16:32:26
VBASE031.VDF : 7.11.12.177 98816 Bytes 2011-08-01 16:52:21
Engineversion : 8.2.6.22
AEVDF.DLL : 8.1.2.1 106868 Bytes 2010-07-29 21:00:24
AESCRIPT.DLL : 8.1.3.73 1622395 Bytes 2011-07-15 19:18:14
AESCN.DLL : 8.1.7.2 127349 Bytes 2010-11-23 19:59:26
AESBX.DLL : 8.2.1.34 323957 Bytes 2011-06-02 18:26:35
AERDL.DLL : 8.1.9.13 639349 Bytes 2011-07-15 19:17:56
AEPACK.DLL : 8.2.9.5 676214 Bytes 2011-07-15 19:17:35
AEOFFICE.DLL : 8.1.2.13 201083 Bytes 2011-07-28 16:00:22
AEHEUR.DLL : 8.1.2.148 3576184 Bytes 2011-07-28 16:00:21
AEHELP.DLL : 8.1.17.7 254327 Bytes 2011-07-28 15:59:44
AEGEN.DLL : 8.1.5.6 401780 Bytes 2011-05-20 07:36:23
AEEMU.DLL : 8.1.3.0 393589 Bytes 2010-11-23 19:59:19
AECORE.DLL : 8.1.22.4 196983 Bytes 2011-07-15 19:15:46
AEBB.DLL : 8.1.1.0 53618 Bytes 2010-04-23 19:47:16
AVWINLL.DLL : 9.0.0.3 18177 Bytes 2008-12-12 07:47:59
AVPREF.DLL : 9.0.3.0 44289 Bytes 2009-08-26 14:14:02
AVREP.DLL : 10.0.0.9 174120 Bytes 2011-03-05 09:10:11
AVREG.DLL : 9.0.0.0 36609 Bytes 2008-12-05 09:32:09
AVARKT.DLL : 9.0.0.3 292609 Bytes 2009-03-24 14:05:41
AVEVTLOG.DLL : 9.0.0.7 167169 Bytes 2009-01-30 09:37:08
SQLITE3.DLL : 3.6.1.0 326401 Bytes 2009-01-28 14:03:49
SMTPLIB.DLL : 9.2.0.25 28417 Bytes 2009-02-02 07:21:33
NETNT.DLL : 9.0.0.0 11521 Bytes 2008-12-05 09:32:10
RCIMAGE.DLL : 9.0.0.25 2438913 Bytes 2009-05-15 14:39:58
RCTEXT.DLL : 9.0.73.0 86785 Bytes 2009-10-13 11:25:47
Configuration settings for the scan:
Jobname.............................: Complete system scan
Configuration file..................: c:\program files\avira\antivir desktop\sysscan.avp
Logging.............................: low
Primary action......................: interactive
Secondary action....................: ignore
Scan master boot sector.............: on
Scan boot sector....................: on
Boot sectors........................: C:, D:, F:,
Process scan........................: on
Scan registry.......................: on
Search for rootkits.................: on
Integrity checking of system files..: off
Scan all files......................: All files
Scan archives.......................: on
Recursion depth.....................: 20
Smart extensions....................: on
Macro heuristic.....................: on
File heuristic......................: medium
Deviating risk categories...........: +APPL,+GAME,+JOKE,+PCK,+PFS,+SPR,
Start of the scan: 2 sierpnia 2011 17:53
Starting search for hidden objects.
'48642' objects were checked, '0' hidden objects were found.
The scan of running processes will be started
Scan process 'POWERPNT.EXE' - '1' Module(s) have been scanned
Scan process 'ctfmon.exe' - '1' Module(s) have been scanned
Scan process 'avscan.exe' - '1' Module(s) have been scanned
Scan process 'opera.exe' - '1' Module(s) have been scanned
Scan process 'jucheck.exe' - '1' Module(s) have been scanned
Scan process 'avcenter.exe' - '1' Module(s) have been scanned
Scan process 'explorer.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'wscntfy.exe' - '1' Module(s) have been scanned
Scan process 'alg.exe' - '1' Module(s) have been scanned
Scan process 'HPQTOA~1.EXE' - '1' Module(s) have been scanned
Scan process 'wuauclt.exe' - '1' Module(s) have been scanned
Scan process 'uTorrent.exe' - '1' Module(s) have been scanned
Scan process 'GoogleToolbarNotifier.exe' - '1' Module(s) have been scanned
Scan process 'AutoEJCD.EXE' - '1' Module(s) have been scanned
Scan process 'ZDWLan.EXE' - '1' Module(s) have been scanned
Scan process 'AvastUI.exe' - '1' Module(s) have been scanned
Scan process 'winampa.exe' - '1' Module(s) have been scanned
Scan process 'GrooveMonitor.exe' - '1' Module(s) have been scanned
Scan process 'avgnt.exe' - '1' Module(s) have been scanned
Scan process 'Scheduler.exe' - '1' Module(s) have been scanned
Scan process 'wmiprvse.exe' - '1' Module(s) have been scanned
Scan process 'igfxsrvc.exe' - '1' Module(s) have been scanned
Scan process 'QLBCTRL.exe' - '1' Module(s) have been scanned
Scan process 'HP Wireless Assistant.exe' - '1' Module(s) have been scanned
Scan process 'igfxpers.exe' - '1' Module(s) have been scanned
Scan process 'hkcmd.exe' - '1' Module(s) have been scanned
Scan process 'igfxtray.exe' - '1' Module(s) have been scanned
Scan process 'SynTPEnh.exe' - '1' Module(s) have been scanned
Scan process 'DLACTRLW.EXE' - '1' Module(s) have been scanned
Scan process 'hpwuSchd2.exe' - '1' Module(s) have been scanned
Scan process 'pthosttr.exe' - '1' Module(s) have been scanned
Scan process 'jusched.exe' - '1' Module(s) have been scanned
Scan process 'smax4pnp.exe' - '1' Module(s) have been scanned
Scan process 'hpqwmiex.exe' - '1' Module(s) have been scanned
Scan process 'wdfmgr.exe' - '1' Module(s) have been scanned
Scan process 'StarWindServiceAE.exe' - '1' Module(s) have been scanned
Scan process 'spnsrvnt.exe' - '1' Module(s) have been scanned
Scan process 'sqlservr.exe' - '1' Module(s) have been scanned
Scan process 'LSSrvc.exe' - '1' Module(s) have been scanned
Scan process 'btwdins.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'avguard.exe' - '1' Module(s) have been scanned
Scan process 'asghost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'sched.exe' - '1' Module(s) have been scanned
Scan process 'spoolsv.exe' - '1' Module(s) have been scanned
Scan process 'AvastSvc.exe' - '1' Module(s) have been scanned
Scan process 'dllhost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'lsass.exe' - '1' Module(s) have been scanned
Scan process 'services.exe' - '1' Module(s) have been scanned
Scan process 'winlogon.exe' - '1' Module(s) have been scanned
Scan process 'csrss.exe' - '1' Module(s) have been scanned
Scan process 'smss.exe' - '1' Module(s) have been scanned
59 processes with 59 modules were scanned
Starting master boot sector scan:
Master boot sector HD0
[iNFO] No virus was found!
Start scanning boot sectors:
Boot sector 'C:\'
[iNFO] No virus was found!
Boot sector 'D:\'
[iNFO] No virus was found!
Boot sector 'F:\'
[iNFO] No virus was found!
Starting to scan executable files (registry).
The registry was scanned ( '71' files ).
Starting the file scan:
Begin scan in 'C:\' <System>
C:\hiberfil.sys
[WARNING] The file could not be opened!
[NOTE] This file is a Windows system file.
[NOTE] This file cannot be opened for scanning.
C:\pagefile.sys
[WARNING] The file could not be opened!
[NOTE] This file is a Windows system file.
[NOTE] This file cannot be opened for scanning.
C:\System Volume Information\_restore{BB8C678F-EB43-45F5-84EE-5DEF188F2BDA}\RP405\A0087522.EXE
[DETECTION] Is the TR/Crypt.XPACK.Gen Trojan
C:\System Volume Information\_restore{BB8C678F-EB43-45F5-84EE-5DEF188F2BDA}\RP405\A0087524.exe
[0] Archive type: HIDDEN
--> FIL\\\?\C:\System Volume Information\_restore{BB8C678F-EB43-45F5-84EE-5DEF188F2BDA}\RP405\A0087524.exe
[DETECTION] Is the TR/PSW.OnLineGa.bbe Trojan
C:\System Volume Information\_restore{BB8C678F-EB43-45F5-84EE-5DEF188F2BDA}\RP405\A0087525.DLL
[0] Archive type: HIDDEN
--> FIL\\\?\C:\System Volume Information\_restore{BB8C678F-EB43-45F5-84EE-5DEF188F2BDA}\RP405\A0087525.DLL
[DETECTION] Is the TR/OnlineGam.106709 Trojan
Begin scan in 'D:\' <HP_RECOVERY>
Begin scan in 'F:\' <Agnieszka>
F:\System Volume Information\_restore{BB8C678F-EB43-45F5-84EE-5DEF188F2BDA}\RP405\A0087526.exe
[DETECTION] Is the TR/Obfuscated.3100672XZ Trojan
F:\System Volume Information\_restore{BB8C678F-EB43-45F5-84EE-5DEF188F2BDA}\RP405\A0087527.exe
[DETECTION] Contains recognition pattern of the DR/Swisyn.akgs dropper
Beginning disinfection:
C:\System Volume Information\_restore{BB8C678F-EB43-45F5-84EE-5DEF188F2BDA}\RP405\A0087522.EXE
[DETECTION] Is the TR/Crypt.XPACK.Gen Trojan
[NOTE] The file was moved to '4e684973.qua'!
C:\System Volume Information\_restore{BB8C678F-EB43-45F5-84EE-5DEF188F2BDA}\RP405\A0087524.exe
[NOTE] The file was moved to '4fe08434.qua'!
C:\System Volume Information\_restore{BB8C678F-EB43-45F5-84EE-5DEF188F2BDA}\RP405\A0087525.DLL
[NOTE] The file was moved to '4db8b714.qua'!
F:\System Volume Information\_restore{BB8C678F-EB43-45F5-84EE-5DEF188F2BDA}\RP405\A0087526.exe
[DETECTION] Is the TR/Obfuscated.3100672XZ Trojan
[NOTE] The file was moved to '4dbc5ccc.qua'!
F:\System Volume Information\_restore{BB8C678F-EB43-45F5-84EE-5DEF188F2BDA}\RP405\A0087527.exe
[DETECTION] Contains recognition pattern of the DR/Swisyn.akgs dropper
[NOTE] The file was moved to '4da7bfec.qua'!
End of the scan: 2 sierpnia 2011 21:00
Used time: 1:37:55 Hour(s)
The scan has been done completely.
8256 Scanned directories
800380 Files were scanned
5 Viruses and/or unwanted programs were found
0 Files were classified as suspicious
0 files were deleted
0 Viruses and unwanted programs were repaired
5 Files were moved to quarantine
0 Files were renamed
2 Files cannot be scanned
800373 Files not concerned
12221 Archives were scanned
2 Warnings
7 Notes
48642 Objects were scanned with rootkit scan
0 Hidden objects were found
